The Agent Skills Directory

[COMMAND_EXECUTION]: The skill operates by executing shell commands via the @bankofai/sun-cli tool. This includes both read-only operations (querying token info) and write operations (executing trades). The instructions emphasize the use of --json for structured output and --yes for skipping confirmation in automated flows, though security rules in the documentation mandate a user-facing preview before execution.
[PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection (Category 8) because it ingests and processes untrusted data from the SunPump API.
Ingestion points: Data enters the agent's context through sun sunpump token get, sun sunpump portfolio, and sun sunpump tx user command outputs (located in SKILL.md sections 3, 4, 5, 6, and 7).
Boundary markers: The skill uses the --json flag to ensure data is returned in a structured format, which helps the agent distinguish between data and instructions, though no explicit 'ignore embedded instructions' markers are defined for the JSON content.
Capability inventory: The agent has the capability to perform financial transactions (sun swap, sun sunpump buy/sell) and network requests (via the CLI tool).
Sanitization: There is no explicit sanitization or filtering of token metadata (descriptions, symbols) or holder names mentioned before the agent processes them.

SunPump Meme Token Toolkit